CVE-2021-28321

Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:microsoft:visual_studio:2015:update3:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2017:*:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:visual_studio_2019:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_10:20h2:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_10:1803:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_10:1809:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_10:1909:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_10:2004:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_server_2016:20h2:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_server_2016:1909:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_server_2016:2004:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*

History

21 Nov 2024, 05:59

Type Values Removed Values Added
References () http://packetstormsecurity.com/files/162251/Microsoft-DiagHub-Privilege-Escalation.html - Third Party Advisory, VDB Entry () http://packetstormsecurity.com/files/162251/Microsoft-DiagHub-Privilege-Escalation.html - Third Party Advisory, VDB Entry
References () http://seclists.org/fulldisclosure/2021/Apr/40 - Mailing List, Third Party Advisory () http://seclists.org/fulldisclosure/2021/Apr/40 - Mailing List, Third Party Advisory
References () https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28321 - Patch, Vendor Advisory () https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-28321 - Patch, Vendor Advisory

29 Dec 2023, 20:16

Type Values Removed Values Added
Summary Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability This CVE ID is unique from CVE-2021-28313, CVE-2021-28322. Diagnostics Hub Standard Collector Service Elevation of Privilege Vulnerability

Information

Published : 2021-04-13 20:15

Updated : 2024-11-21 05:59


NVD link : CVE-2021-28321

Mitre link : CVE-2021-28321

CVE.ORG link : CVE-2021-28321


JSON object : View

Products Affected

microsoft

  • windows_server_2016
  • visual_studio
  • visual_studio_2019
  • windows_server_2019
  • windows_10
  • visual_studio_2017
CWE
CWE-59

Improper Link Resolution Before File Access ('Link Following')